[! [http://p7.qhimg.com/t0103be813526052f73.jpg](http://p9.qhimg.com/t011e426f64c18aac57.jpg)]() From the latest WordPress vulnerability over 67,000 sites to be attacked * * * If your website uses WordPress, and there is no timely update official last week released a patch, upgrade to v4. 7. 2 versions, then your site is likely to be this 4 a hacking organization to attack. According to foreign Web security firm Sucuri said that since last Monday the vulnerability details are disclosed after the attack range continues to expand, recently every day to tend to 3000 times. [! [http://p8.qhimg.com/t019b8214c5ea742965.jpg](http://p8.qhimg.com/t019b8214c5ea742965.jpg)]() Over time the use of the REST API vulnerability try a number of sources: Sucuri） The attacker is using the WordPress REST API vulnerability by the WordPress team two weeks ago to repair and Update Patch, [they last week a discloses vulnerability details]() Since the attack has been sustained for a period of time, Google already can retrieve the part of the attacked content. [! [http://p6.qhimg.com/t01c280652cf4215213.jpg](http://p6.qhimg.com/t01c280652cf4215213.jpg)]() Through Google search tampered with the site Through Google Search"by w4l3XzY3", you can browse some of the affected sites. [! [http://p2.qhimg.com/t01076571ec80bc3b8f.jpg](http://p2.qhimg.com/t01076571ec80bc3b8f.jpg)]() Part of the affected site list More of the affected site can be in theto view. Currently, the use of the REST API vulnerability tampered with the website of these organizations just did some awareness of the exposure, the site within the title of the article and the body modified to your own content. [! [http://p9.qhimg.com/t01c7100295e2da2609.jpg](http://p9.qhimg.com/t01c7100295e2da2609.jpg)]() Wherein a tampering of the site Sucuri's CTO, Daniel Cid expressed the desire to see more professional content into everyone's field of vision, such as the use of the vulnerability publishing more complex content, a black chain SEO: such as inserting links and images. The use of vulnerabilities to do such tampering, then, do the Black chain of SEO, you can improve the other site's search engine ranking, or promotion of some other illegal products. Of course, if the website content is tampered with as some malicious content that causes the site to be search engine shielding. Suggest all to use WordPress website, the main and timely updates to the latest version v4. 7. 2。 Avoided due to the REST API of the security problems, causing the website to be search engine shielding. Original link: WordPress REST API content injection vulnerability analysis the vulnerability analysis of the content reprinted from:to * * * 0x00 vulnerability description * * * 1\. Vulnerability description In the REST API automatically included in Wordpress4. 7 or more version, the WordPress REST API provides a set of easy-to-use HTTP endpoint, you can use the user in a simple JSON format to access the site's data, including users, posts, categories, etc. To retrieve or update the data and send the HTTP request just as simple. Last week, one by the REST API caused by the impact of WorePress4. 7. 0 and 4. 7. 1 version the vulnerability was disclosed, the vulnerability can lead to WordPress all the content of the article can be without verification is to view, modify, delete, or even create a new article, the harm is huge. 2\. The vulnerabilities affect version WordPress4. 7. 0 WordPress4. 7. 1 0x01 vulnerability reproduction * * * [Seebug]() **[1] [[2]](<83306_2.htm>) [[3]](<83306_3.htm>) [[4]](<83306_4.htm>) [[5]](<83306_5.htm>) [next](<83306_2.htm>)**

Query Builder